Privacy

Attorney Richard Santalesa was quoted on the time and deadlines coming for entities affected by newly enacted New York State Dept of Financial Services CyberSecurity Regs, which went into effect on March 1, 2017 following two rounds of drafts and public comment. The article in SecurityIntelligence, New York State Codifies Financial Cybersecurity Regulations, available here https://securityintelligence.com/news/new-york-state-codifies-financial-cybersecurity-regulations/, […]

As the de facto federal agency policing privacy and data breaches nationally, when the Federal Trade Commission (“FTC”) speaks on such matters, it’s generally wise to listen. Earlier this week the FTC issued a new, 16-page, business-oriented Guide (Data Breach Response: A Guide for Business,) along with accompanying short video on what to do (and […]

The digital world has migrated to the Cloud, on both personal and business levels. But for “covered entities” and “business associates” subject to the Health Insurance Portability and Accountability Act regime, better known by the moniker of “HIPAA”, many CE and BA’s must often determine how (and whether) they can take advantage of cloud computing while […]

As written by SmartEdgeLaw Group Attorney Richard Santalesa, in the September 30, 2016 IAPP Privacy Tracker and Daily Dashboard – at https://iapp.org/news/a/proposed-cybersec-regulations-for-new-york-financial-institutions-have-a-broad-reach/ Proposed cybersec regulations for New York financial institutions have a broad reach Richard Santalesa, CIPP/US Privacy Tracker | Sep 30, 2016 New York state’s long-awaited Cybersecurity Regulations For Financial Services Companies, issued by […]

It’s certainly been a very busy past eight months, even since the EU-US Safe Harbor was declared invalid back in October 2015 by the European Court of Justice. Without re-hashing events since then (suffice to say it’s been a long and winding road), the EC-adopted Privacy Shield went into effect yesterday (per the EC Press […]

The following post by SmartEdgeLaw Group attorney, Richard Santalesa, was originally published Oct. 27, 2015 at the International Association of Privacy Professionals’ Privacy Perspectives website. Is this the Definitive Cybersecurity Guide? While many companies come up short on their cybersecurity programs or ability to safeguard data privacy, one area where no gap exists is in the […]

The SmartEdgeLaw Group is happy to announce its participation in the upcoming Sept 29, 2015 IAPP KnowledgeNet to be held at the Hartford Convention Center in conjunction with the 2015 Information Governance Conference. Attendance at the KnowledgeNet is free of charge, but registration is required. IAPP members can received a 15% discount for the full InfoGovCon15 […]

Building on the FTC’s continued push into mobile issues and privacy, which it reinforced at the 2015 IAPP Global Summit in D.C. two weeks ago, the Federal Trade Commission today announced an upcoming workshop to explore the issues raised by cross device tracking – using browsers or apps to visit sites across different devices. As the FTC […]

A new staff report by the FTC, What’s the Deal” – A FTC Study on Mobile Shopping Apps, highlights the FTC”s continued concerns about user data and the mobile ecosphere – particularly how payment disputes are handled by developers of mobile apps in the wake of recent Apple and Amazon app issues.. Following in the wake of the […]

Please join us at the upcoming IAPP KnowledgeNet CT on June 12 4-6pm at the offices of Shipman & Goodwin LLP, One Constitution Plaza, Hartford, CT 06103. Refreshments will be served. Our topic: Data Breach Responses: Practical Lessons From the Target Trenches and Beyond Our meeting will include featured speakers and a group round table discussion […]

Data brokers have been under increased scrutiny lately – from Congress, the press and joined again this week by the Federal Trade Commission, which released a 109-page study of nine data brokers entitled Data Brokers: A Call For Transparency and Accountability (the “Report”). which examined nine data brokers to determine the types and scope of personal information data collected. What […]

Recently, the Federal Trade Commission snapped at Snapchat over its privacy policy and representations made regarding the company’s mobile application. The FTC’s action has raised some eyebrows. But it has also raised awareness that promises made in a privacy policy matter. What did Snapchat do wrong and what are the key takeaways you should adopt […]

Since 2010 the number of states with data breach notification statutes was stalled at 46. No longer. Kentucky is now the 47th state to enact a data breach notification statute, effective July 14, 2014. Kentucky’s new data breach notification statute, appearing in Ken. Rev. Stat. Chapter 365 (as amended by H.B. 232 on April 10, […]